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Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) OR THIRTY (30) DAYS, 
WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply Is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)S Responsive to communication(s) filed on 20 June 2007 . 
2a)n This action is FINAL. 2b)^ This action is non-final. 

3) 0 Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) 13 Claim(s) 1-24 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) 0 Clajm(s) is/are allowed. 

6) S Claim(s) 1-24 is/are rejected. 
?)□ Claim(s) is/are objected to. 

8) 0 Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10)E The drawing(s) filed on 27 February 2004 is/are: a)S accepted or b)n objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 

Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 
11 )□ The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12)n Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)n All b)n Some * c)^ None of: 

1 .□ Certified copies of the priority documents have been received. 

, 2.n Certified copies of the priority documents have been received in Application No. . 

3.n Copies of the certified copies of the priority documents have been received in this National Stage 
application from the International Bureau (PCT Rule 17.2(a)). ' 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 

Claim Rejections - 35 USC § 103 

1 . The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

2. Claim 1-4. 7. 9-12, 15, 17-20 and 23 are rejected under 35 U.S.C- 103(a) as 
being unpatentable over McNabb et al (US Patent No. 6289462) in view of Hue et 
al (US Publication No. 2002/0126845). 

As to claims 1. 9 and 17, McNabb discloses a data processing system 
comprising a database (Figure 9, element 510), the database comprising classified 
table elements (column 18. lines 56-58), the data processing system coupled to a 
classification engine (Figure 9, element 504) adapted to provide indicators of approval 
or non approval to permit (column14, lines 19-26), for a request associated with a 
requestor (column14, lines 19-26), access to contents of the classified table elements 
(column 8, lines 41-45), a method for retrieving data from the classified table elements 
(column 18, lines 52-58), the method comprising the steps of: receiving the request 
(Figure 9, element 502) at the database (Figure 9, element 510, wherein granted 
requests will be fonA/arded to the database so that the desired data can be uploaded by 
the requesting party), from the requestor (Figure 9, element 500), to access the 
contents of the classified table elements (column 8, lines 11-15); for each classified 
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table element, the database (510) asking the classification engine (504) to provide an 
indication of whether the requestor associated with the request is to be permitted 
access to the contents of the respective classified table element (if request is fon/varded 
to the database, it means that the access was granted, the database requires confirmed 
request in order to provide the access to the data, i.e. the database is asking for the 
identification information); and accessing the contents of each classified engine, the 
approval indicators indicating that the requestor is permitted to access the contents of 
the respective classified table element (column 14, lines 56-67,and column 15, lines 1- 
28);. wherein the asking step comprises sending the request (Figure 9, element 502) to 
the classification engine (Figure 9, element 504) coupled to the data processing system 
(Figure 9, element 510). McNabb does not explicitly teach the data processing system 
being external to a classification engine, however Hue teaches a system performing 
wireless transaction wherein the authentication module (security gate) is external to a 
database (paragraph 57). It would have been obvious to one of the ordinary skill in the 
art during the time the invention was made to have external authentication unit, as 
taught by Hue, in McNabb's information system, because it is a matter of a design 
choice if a database and authentication software reside on a single server or plural 
servers. The design is usually determined by the available hardware (cost) and the 
amount of the databases holding classified data (i.e. if there are plural databases it 
might be more beneficial to share one classification unit, so in this case it should be a 
separate device). 
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As to claims 2, 10 and 18 . McNabb discloses the method comprising the steps 
of: providing to the requestor, access to the contents of each classified table element for 
which an approval indicator is received; and, denying, to the requestor, access to the 
contents of each classified table element for which a non-approval indicator is received 
from the classification engine, the non-approval indicator indicating that the requestor is 
not permitted to access the contents of the respective classified table element (column 
14, lines 49-67,and column 15, lines 1-28). 

As to claims 3, 11 and 19 . McNabb discloses the method wherein: the classified 
table elements are included in a classified table contained in the database (column 18, 
lines 52-58); each classified table element is associated with a respective classification 
label (column 14, lines 49-54); and the classification engine (Figure 9, element 504) 
uses the classification label for each classified table element and a classification 
associated with the requestor in determining whether to provide the approval indicator 
and whether to provide the non-approval indicator for the respective classified table 
element (column 14, lines 19-26). 

As to claims 4, 12 and 20 . McNabb discloses the method wherein the classified 
table element is a classified table row (column 18, lines 55-58). 

As to claims 7, 15 and 23 . McNabb discloses the method wherein in the asking 
step, the classification engine (Figure 9, element 504) is invoked through at least one 
processing exit (Figure 9, element 502) in the data processing system (Figure 9, 
element 500). 
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3. Claims 5, 6, 13, 14. 21 and 22 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over McNabb et al (US Patent 6289462) in the view of Hue et al (US 
Publication No, 2002/0126845) and further in view of Tashenberg (US Publication 
2001/0034711), 

As to claims 5, 13 and 21 McNabb teaches the method further comprising the 
executable instructions comprising added instructions for invoking the classification 
engine such that for each row of the classified table (column 18, lines 56-58), 
arguments for at least one classification parameter are passed to the classification 
engine (Figure 9, element 504) for use in generating one of the approval indicator and 
non-approval indicator for the respective row (column 14, lines 19-26 and lines 49-54), 
where the arguments comprise both data stored in one or more classification columns 
of the table (i.e. data that is about to be accessed) and data used to determine the 
classification associated with the requestor (column 14, lines 19-26, i.e. SL (sensitivity 
label)). Neither McNabb nor Hue explicitly teaches that the original request is compiled 
into executable instructions. Tashenberg teaches a network system wherein request is 
converted into machine executable instructions (paragraph 92). It would have been 
obvious to one of the ordinary skill in the art during the time the invention was made to 
compile the request into machine executable instruction as taught by Tashenberg, and 
use this in McNabb's secure computer operating system, because compiling the 
m^rssages or requests into computer readable instruction is commonly known and used. 
Furthermore compiling step is essential in the system operation because the interface 
that allows the user to request access to certain data is in a human friendly readable 
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form, not in a computer language (binary code), and therefore it needs to be converted 
to allow computer to process the instructions. 

As to claims 6, 14 and 22, McNabb discloses the method wherein the 
classification engine (Figure 9, element 504) is adapted to generate the indicators 
(column 14, lines 19-26, i.e. SL) using a classification level derived from data stored in 
the at least one classification column of each respective row (column 18, lines 52-58) in 
accordance with a column mapping schema (i.e. the information about the access are 
derived from the ID and many other criteria, Figure 10). 
4. Claims 8, 16 and 24 are rejected under 35 U,S-C. 103fa) as being 
unpatentable over McNabb et al (US Patent 6289462) in the view of Hue et al (US 
Publication No. 2002/0126845) and further in view of Hepworth et al (US 
Publication 2006/0032920), McNabb teaches all the limitations disclosed in claims 1,9 
and 17 respectively, further he also teaches checking for each classified table element, 
whether decision contains one of an approval indicator and non-approval indicator 
associated therewith, and wherein the asking step is performed only when neither 
indicator is contained in the decision unit (Figure 9, element 504; since McNabb does 
not teach processing multiple requests from the same user at one point of time, it also 
indicates that when one request is processed, the asking step is held). McNabb does 
not teach explicitly that the decision about access approval is contained in cache. 
Hepworth teaches the system wherein authorization information is stored in a local 
cache. It would have been obvious to one of the ordinary skill in the art during the time 
the invention was made to store the approval status temporarily in cache memory as 
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taught by Hepworth, in McNabb's access security system, because it is well known in 
the art, that temporary information such as approval are stored for short period of time 
in cache or RAM because usually there is no need to store the authentication data on 
the hard disk. Furthermore in order to complete the transaction the response has to be 
placed in the memory that allows fast process between the requesting and processing 
units. 

Response to Arguments 

5. Applicant's arguments filed June 20, 2007 have been fully considered but they 
are not persuasive. 

6. With respect to the applicant's assertion on page 12, second paragraph, stating 
that McNabb does not teach the request being sent to the database, the examiner 
disagrees. As clearly indicated in Figure 9 in the prior art, the request is eventually 
directed to the database. In order to process desired information, the approved requests 
have to be fonA/arded to the database so that the content of interest in the database is 
accessed. 

The Prior Art 

7. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 
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Zotto et al (US Publication 2004/0009815) disclose a managing access 
to content wherein the access to individual pieces of information is 
controlled. 

Larsen (US Publication 2005/0055581) discloses a process-based 
security comprising access rights look-up table. 



8. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Angela M. Lie whose telephone number is 571-272- 
8445. The examiner can normally be reached on M-F. 

9. If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Don Wong can be reached on 571-272-1834. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

10. Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Sen/ice Representative or access to the automated information 
system, call 800-786-9199 (In USA OR CANADA) or 571-272-1000. 



Inquiry 





WILSON LEE 
PRIMARY EXAMINER 



